SEARCH
Google Launches Bug Bounty Program For Open Source Projects
Google will reward the discoveries of flaws found in its open source software projects, such as Golang, Angular and Fuchsia.
China-Based Group Uses ScanBox Framework in Espionage Attacks
The group activity has overlaps with APT40, which has continued its “operational tempo” despite a previous indictment by the U.S. Department of Justice in 2021.
FTC Sues Data Broker For Selling Sensitive Location Data
The lawsuit against data broker Kochava is another step by the FTC to crack down on invasive data collection and sharing practices.
Attacker Stole Portion of LastPass Source Code
An attacker was able to compromise a developer account and steal a portion of the LastPass source code recently, the company said. But no customer data was affected.
Phishing Campaign Targets PyPI Project Maintainers
The PyPI maintainers say a new phishing campaign is targeting Python project maintainers and aiming to steal credentials and compromise projects.